$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft File: 34pOYRe8o2iUDWjphUeYuWZgndQ.mft (raw, json) Hash identifier: 6cjOW2eq71Ssm9w8l48SJRNzNHsvBQXvgukcm9Qh9w4= Subject key identifier: FD:67:95:11:45:EE:1C:50:15:08:FC:94:B2:14:79:09:42:27:83:28 Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft Manifest number: 084B Signing time: Fri 20 Sep 2024 20:38:14 +0000 Manifest this update: Fri 20 Sep 2024 20:38:13 +0000 Manifest next update: Fri 27 Sep 2024 20:38:13 +0000 Files and hashes: 1: 34pOYRe8o2iUDWjphUeYuWZgndQ.crl (hash: 1FyeSlPkNwl3+BQ5HZf5iWM1royijoN9jw//tdgB8lQ=) 2: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (hash: qrOVzHUnQpUjj2NXO2uI9c1Lmn26rV+B/0QYiSJpTNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Sep 2024 19:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Sep 20 20:38:13 2024 GMT Not After : Sep 27 20:38:13 2024 GMT Subject: CN=66eddd36-b87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d0:b0:4a:3b:72:88:bb:32:b6:d0:9f:df:7e: e5:c3:fb:1b:95:07:0c:36:34:81:1e:68:55:7b:c7: 46:c9:48:4e:e6:36:11:85:32:5d:cd:e4:c0:08:3d: a3:a4:a5:4b:39:cb:88:37:95:fd:0d:ef:28:fc:f9: 78:28:02:94:58:3a:96:88:db:c5:dd:3a:bf:4f:89: 8a:76:db:b4:2b:43:71:6e:3d:db:22:7f:6c:23:60: 15:20:ad:d0:79:cb:43:fd:4c:5c:97:43:02:fa:19: b9:13:46:e5:64:5f:78:b6:d6:4f:4a:59:21:9a:d6: 47:09:ab:f3:34:3a:17:2f:a8:71:9f:8f:38:a5:ce: 4a:2d:90:c1:60:e5:15:77:59:4b:06:61:2f:a8:32: c9:4d:61:82:af:90:5c:9e:21:2b:33:8d:84:b5:d0: 40:fa:59:d6:ef:71:bd:e6:ab:9a:b3:bd:8e:b4:93: 90:ea:ec:21:ce:40:58:33:4f:c6:71:75:b1:8c:73: 87:0a:aa:55:3c:a1:17:18:5b:5c:09:5c:52:83:cd: 5e:25:31:27:c0:ee:97:d7:29:23:6e:4f:f1:2c:a3: e4:d7:48:07:ee:0f:b0:c8:e7:fb:37:16:7d:07:7d: f2:7d:21:f1:eb:0d:36:37:5f:a4:ec:b2:cf:a8:ee: ba:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:67:95:11:45:EE:1C:50:15:08:FC:94:B2:14:79:09:42:27:83:28 X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:03:bb:90:4e:ae:80:7d:1e:86:83:5a:26:b7:83:45:22:d0: 70:4a:5c:b5:32:24:a1:71:e3:fb:1c:61:94:54:b5:da:97:1e: 68:25:27:d2:44:74:4d:a8:35:ec:63:76:6d:3f:d0:ce:fa:f5: 93:bc:83:49:e7:01:9c:64:8b:fb:f5:45:45:c0:63:40:99:71: 9f:38:94:8f:a1:83:56:a4:bf:96:74:08:02:7c:d2:65:d5:3d: 92:8f:7a:e8:4c:90:8e:5b:01:67:1a:d2:9e:6c:3d:53:69:0c: 2d:c6:28:d4:6f:6a:d0:0e:5a:a2:52:01:99:bb:28:6c:3c:d6: e0:23:a2:b4:e6:ae:b3:aa:06:28:38:ac:c5:2e:bb:69:ce:2e: 05:b6:3c:8a:e5:1e:a6:b4:ff:bd:89:19:4a:47:ff:96:55:27: 8a:a1:c4:eb:47:94:71:35:54:ea:92:57:63:d5:52:94:d2:eb: 01:9f:0c:a0:ee:b0:5a:79:ef:95:70:93:38:8c:93:5a:d2:5e: fa:73:13:76:4b:b8:94:a6:88:a9:0b:eb:9c:dd:c5:b7:1f:61: 0b:04:4d:8c:1d:ff:15:15:aa:18:ea:8d:79:a9:58:d5:bf:38: 31:3f:c7:6f:5a:28:3d:cf:29:06:bd:cc:21:c2:80:6e:78:29: 6f:9b:f1:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjQwOTIwMjAzODEzWhcNMjQwOTI3MjAzODEzWjAYMRYwFAYD VQQDEw02NmVkZGQzNi1iODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59CwSjtyiLsyttCf337lw/sblQcMNjSBHmhVe8dGyUhO5jYRhTJdzeTACD2j pKVLOcuIN5X9De8o/Pl4KAKUWDqWiNvF3Tq/T4mKdtu0K0Nxbj3bIn9sI2AVIK3Q ectD/Uxcl0MC+hm5E0blZF94ttZPSlkhmtZHCavzNDoXL6hxn484pc5KLZDBYOUV d1lLBmEvqDLJTWGCr5BcniErM42EtdBA+lnW73G95quas72OtJOQ6uwhzkBYM0/G cXWxjHOHCqpVPKEXGFtcCVxSg81eJTEnwO6X1ykjbk/xLKPk10gH7g+wyOf7NxZ9 B33yfSHx6w02N1+k7LLPqO66FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1nlRFF 7hxQFQj8lLIUeQlCJ4MoMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODUzMC8xOEY2NkQ4NkIxRTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8y aVVEV2pwaFVlWXVXWmduZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAA7uQTq6AfR6Gg1omt4NFItBwSly1MiShceP7HGGUVLXalx5oJSfS RHRNqDXsY3ZtP9DO+vWTvINJ5wGcZIv79UVFwGNAmXGfOJSPoYNWpL+WdAgCfNJl 1T2Sj3roTJCOWwFnGtKebD1TaQwtxijUb2rQDlqiUgGZuyhsPNbgI6K05q6zqgYo OKzFLrtpzi4FtjyK5R6mtP+9iRlKR/+WVSeKocTrR5RxNVTqkldj1VKU0usBnwyg 7rBaee+VcJM4jJNa0l76cxN2S7iUpoipC+uc3cW3H2ELBE2MHf8VFaoY6o15qVjV vzgxP8dvWig9zykGvcwhwoBueClvm/H/ -----END CERTIFICATE-----Generated at Fri Sep 20 21:42:08 2024 by rpki-client on console-fra.rpki-client.org